Rapid7 Vulnerability & Exploit Database

ELSA-2013-1861 Moderate: Oracle Linux nss security update

Back to Search

ELSA-2013-1861 Moderate: Oracle Linux nss security update

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
12/19/2013
Created
07/25/2018
Added
12/19/2013
Modified
07/04/2017

Description

Oracle Linux Security Advisory ELSA-2013-1861 https://rhn.redhat.com/errata/RHSA-2013-1861.html The following updated rpms for Oracle Linux 6 have been uploaded to the Unbreakable Linux Network: i386: nss-3.15.3-3.0.1.el6_5.i686.rpm nss-devel-3.15.3-3.0.1.el6_5.i686.rpm nss-pkcs11-devel-3.15.3-3.0.1.el6_5.i686.rpm nss-sysinit-3.15.3-3.0.1.el6_5.i686.rpm nss-tools-3.15.3-3.0.1.el6_5.i686.rpm x86_64: nss-3.15.3-3.0.1.el6_5.i686.rpm nss-3.15.3-3.0.1.el6_5.x86_64.rpm nss-devel-3.15.3-3.0.1.el6_5.i686.rpm nss-devel-3.15.3-3.0.1.el6_5.x86_64.rpm nss-pkcs11-devel-3.15.3-3.0.1.el6_5.i686.rpm nss-pkcs11-devel-3.15.3-3.0.1.el6_5.x86_64.rpm nss-sysinit-3.15.3-3.0.1.el6_5.x86_64.rpm nss-tools-3.15.3-3.0.1.el6_5.x86_64.rpm SRPMS: http://oss.oracle.com/ol6/SRPMS-updates/nss-3.15.3-3.0.1.el6_5.src.rpm Description of changes: [3.15.3-3.0.1.el6_5] - Added nss-vendor.patch to change vendor [3.15.3-3] - Revoke trust in one mis-issued anssi certificate - Resolves: Bug 1042685 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) [rhel-6.6]

Solution(s)

  • oracle-linux-upgrade-nss
  • oracle-linux-upgrade-nss-devel
  • oracle-linux-upgrade-nss-pkcs11-devel
  • oracle-linux-upgrade-nss-sysinit
  • oracle-linux-upgrade-nss-tools

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;